Beware of PayPal "New Address" Emails

New approach (to phishing). Same goal.

Cyberattackers constantly evolve their tactics to bypass organizational defenses. A recent trend involves exploiting PayPal's gift address feature to deliver phishing messages. These messages may include a fake support number to trick recipients into calling or malicious links designed to steal account credentials. In either case, the attacker's goal is to compromise your PayPal account.

If you receive a PayPal notification about account changes or a sent invoice, do not click any links in the email. Instead, directly type the official PayPal URL into your web browser to ensure you're interacting with the legitimate PayPal website, not a fraudulent copy.

To learn more about this new method of attack: https://www.bleepingcomputer.com/news/security/beware-paypal-new-address-feature-abused-to-send-phishing-emails/

Tags: